IT Consortium becomes first FinTech in Ghana to be ISO 27001:2013 certified

IT Consortium becomes first FinTech in Ghana to be ISO 27001:2013 certified

IT Consortium, recently adjudged Ghana’s leading FinTech company at the 2018 edition of the prestigious Ghana Club 100 Awards, has become Ghana’s first FinTech company to obtain the ISO/IEC 27001:2013 certification.

This certification further consolidates the company’s position as a market leader within the Ghanaian FinTech space.

The ISO 27001 is an international standard, recognized globally for managing risks to the security of information an organization possesses.

This certification which provides a set of standardized requirements for an Information Security Management System (ISMS) enables an organization to effectively manage risks to information security, as well as protect the information of clients and employees.

At a brief presentation ceremony, Eric Odae, a certified Auditor with the Professional Evaluation and Certification Board (PECB) was confident that IT Consortium would be a good example of a company that has gone through the certification and thrived.

He further encouraged the management of the company to continuously invest more in their operations, in his words – “so that we can have the Silicon Valley we are looking forward to having in Ghana.”

AtoYawson, IT Consortium’s Chief Information Security Officer indicated that keeping up to date with all the necessary compliance standards is a top priority for the organization.

“We needed to find out if our processes were robust by clearly defining all aspects of our business operations – right from physical security checks to top level information security. We had to also identify associated risks and then look at how to mitigate the risks either by minimizing or managing them. This process has taken us over two years to complete. This certification further enhances our credibility following our PCI-DSS compliance certification,” he explained.

IT Consortium’s CEO, Romeo Bugyei, expressed excitement about the value that the certification will bring to the business.

“As a financial technology company, you want to make sure your processes are solid and reliable. It is not just what you say, but what recognized international standards authorities say about you. With our planned expansion beyond Ghana in the horizon, the ISO/IEC 27001:2013 certification is one of the ways to assure stakeholders that we are truly world class. The certification, in itself is also a validation of the high standards we hold ourselves to internally.”